11215041668[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11215041668.zip
Size

206KB
MD5

24dffdf1dba5e36b34d59bbd33b6c5da
SHA1

16a8dd76d8e0bbc312ea6701e9868ec63f5630c6
SHA256

37754d165c7a524ef91de5f2ae4382d8e773ec793c353b182b6abbbdde43c1eb
SHA512

2f1fabdbddb34a944cd9935deb700a2d557af6b8b64e1ea8299e6743b39fb1260ef9825bef409177190425ba99c374a70b40317135cbebaf513239b5744f22c6
SSDEEP

6144:sRVLVfKMzf5tshdvb7z9PMoNm1F+ch+XLG1dAWCqp:sRrfKVt9PEyvXWdfCqp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dc75a65c73789bab280088d4e5611eb250a99b50137c5cf0f2f8e2ca9f8efc97

Files

11215041668.zip
.zip

Password: infected
dc75a65c73789bab280088d4e5611eb250a99b50137c5cf0f2f8e2ca9f8efc97
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 416KB - Virtual size: 415KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 404KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hhound
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sxdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE